[keycloak-user] use keycloak security proxy to proxy to external url
Dimitris Charlaftis
dharlaftis at ekt.gr
Tue Jan 15 06:48:33 EST 2019
Hello,
I am using the following scheme in docker containers
I use keycloak security proxy to proxy a test application (step 5) to an
external url, which lies outside the host machine where the keycloak
server and keycloak proxy lie. Keycloak uses ldap federation.
Keykloak proxy.json is the following
{
"target-url": "yyyyy.yyyyyy (url of external application",
"bind-address": "0.0.0.0",
"send-access-token": true,
"http-port": "8180",
"https-port": "8443",
"applications": [
{
"base-path": "/",
"adapter-config": {
"realm": "internal_applications",
"auth-server-url": "xxxxxx (url of keycloak auth server ",
"resource": "test_app",
"ssl-required": "external",
"credentials": {
"secret": "xxxxxxxxxxxxxxxxx"
}
},
"constraints": [
{
"pattern": "/*",
"authenticate": true
}
],
"proxy-address-forwarding": true
}
]
}
inside the keycloak server, i have set up a client such that (look the
image beow)
this means that i want to proxy to www.google.com
The problem is that after a successful login, user is redirected to the
test application BUT in the browser address bar remains the host machine
domain name and NOT the external url.... strange...
if i change the "bind-address" parameter from 0.0.0.0 to the external IP
or domain name where i want to proxy, the site is unavailable...
Note that inside the proxy docker container i can curl
http://www.google.com with success.
I would be grateful for any help provided...
Regards,
Dimitris
--
_____________________________
Dimitris Charlaftis
Software Engineer
National Documentation Center
email: dharlaftis at ekt.gr
_____________________________
---
This email has been checked for viruses by AVG.
https://www.avg.com
More information about the keycloak-user
mailing list